When you're building a solution to support 40,000 Department of Defense personnel from a central command center, one of the most demanding and security conscious customers in the world, you'd better know what's happening on your network. Join us for this webinar as we profile a recent use case where ensuring the validity of the data traveling on the network, and delivering time-sensitive information without delays was absolutely critical. Net Optics Tap technology provided the answer this Defense Contractor was looking for and proved mighty enough to conquer the needs of this demanding customer.
In this Webinar:
Understand the immediate impact and business value of deploying Network Taps
Learn how the ability to monitor and troubleshoot network issues remotely increases end-user satisfaction
Identify key points in your network where 100% visibility is critical to reducing mean-time-to-repair (MTTR) and improving network uptime
About Net Optics, Inc.
Net Optics is the leading provider of Intelligent Access and Monitoring Architecture solutions that deliver real-time IT visibility, monitoring and control. As a result, businesses achieve peak performance in network analytics and security. More than 7,500 enterprises, service providers and government organizations—including 85 percent of the Fortune 100—trust Net Optics’ comprehensive smart access hardware and software solutions to plan, scale and future-proof their networks through an easy-to-use interface. Net Optics maintains a global presence through leading OEM partner and reseller networks.
Web: http://www.netoptics.com
Phone: 408-737-7777
Twitter: @netoptics
Facebook: http://www.facebook.com/netoptics
LinkedIn: http://www.linkedin.com/company/net-optics-inc.
Human Factors of XR: Using Human Factors to Design XR Systems
Is the Network Tap Mightier Than the Sword
1. Is the TAP mightier than the Sword?
Or
How I learned to take advantage of distributed network
observation and love the tap.
Intelligent Access and Monitoring
Architecture Solutions
2. Today’s Presenter
Kim Summers
Global Technical Assistance Center
Tier 3 Senior Engineer
25 years of network planning,
implementation and support. Five years
of focus on Net Optics hardware and
software solutions.
2
3. Agenda
1 • Case Overview
• Data Monitoring Challenges for high
2 security, high availability networks
3 • Possible Solutions to Challenges
4 • Chosen Solution
5 • Achieved Outcome
3
4. Customer Case - Profile
The Company
• A mid-size defense contractor
was setting up a project, and
non-intrusive visibility into
network traffic was a top
priority.
The Infrastructure
• A primary data center and
LAN connected departments
along with remote WAN sites.
The Goal
• Support 40,000 Defense
Department personnel from a
central command center.
4
5. Case Overview - Requirements
• 100 percent direct in-line traffic
visibility in real time without
latency or traffic impact
• Deployment of automated tools
and control mechanisms
• Ability to troubleshoot and
develop solutions remotely
• Taps reduce delays associated
with data acquisition when
compared to SPAN ports
• Reduce monitoring solution
footprint and increase efficiency
of the current systems
5
6. Common Challenges in High Security Networks
Protect • The #1 concern for
The
any Network
Security
Data Professional
• Can the monitoring
Monitoring data be shared
among multiple
Data groups with no
Accessible
impact on data
links?
Retain • Can current network
tools provide the
Flexibility needed coverage?
6
7. Case Overview – The Core Issue
Network Managers Security Analysts
Need data on the health of the entire Need data to insure compliance and
network to ensure uptime and SLAs information management
Limited information
at the key Network
Connection points
leaves everyone in
the dark
End Users
Need secure communications across stable
networks regardless of location or distance
from HQ
7
8. Possible Solutions
SNMP Distributed Distributed
Monitoring via Monitoring with
Device Query SPAN ports TAPS
• Limited capabilities • Requires advanced • Taps are tool
• Adds to device CPU configuration agnostic
utilization controls to prevent • Non-intrusive to
• Adds traffic to the SPAN changes Production traffic
existing network • Prone to data loss • 1-to-1 connection
• Device dependent and congestion between Tapped link
issues and monitoring tool
• Adds CPU load to • Allows for local LAN
switches and routers data assessment
8
10. Case Overview – The Core Issue Resolved
Network Managers End Users Security Analysts
Get the data they need Get the applications they need across Get the data they need
a stable network
Security
Network Application Analysis Analysis Tool
Monitor Tool Tool
10
11. Network Taps
Firewall Switch Switch
Network Tap
Analyzer
• Copper available in 10/100, 1Gbps and 10/100/1000
• Fiber units for OC3, OC12, GigaBit and 10 GigaBit
– Multiple split ratios
– No power needed
• One link to one monitor tool (half-duplex / HD)
• Link fail-open (fail-to-wire) technology
• Requires two NICs in monitoring tool
11
12. HD8 High Density Fiber Optic Tap in 1Gig or 10Gig
10Gig 1Gig
• The 10 GigaBit Fiber Tap HD8 is • The 1 GigaBit Fiber Tap HD8 is
optimized and tested for high- optimized and tested for high-
performance 10Gbps fiber networks. performance 1Gbps fiber networks.
• Available in singlemode and multimode • Available in singlemode and multimode
fiber to support passive monitoring, fiber to support passive monitoring,
stealth operation, and 24x7 reliability. stealth operation, and 24x7 reliability.
• Minimize the loss of unused rack-space • Minimize the loss of unused rack-space
by delivering eight functional Taps into by delivering eight functional Taps into
.5U (16 in 1U). .5U (16 in 1U).
12
13. Achieved Outcomes
Chosen Solution: Fiber Optic Taps and Copper
Taps as required by the Link type
• Provide a reliable, efficient solution that is simple to deploy
• Short lead time to improve installation scheduling
• Meets cost objectives
• Future proof with the capacity to support Advanced
Monitoring Switches for additional requirements without
impacting the Production Network
13
14. Taps – Key Takeaways
Key Feature Advantage Benefit
Cost effective solution to
Simple, stable, no moving
Inline Network Device provide access
parts
formonitoring traffic data
Standards based Compatible with common
connections in a variety of cable and component
Installation split ratios to meet any manufacturers solutions
networks needs
Provide access to any link Tools & groups within the
for current or future firm only see the data that is
Visibility observation relevant.
14
15. appTap™ Plug and Play Network Monitoring
• Cost effective solution that is simple to install and use
• Continuous and ad-hoc packet capture. Capture headers and content using various
filters.
• Reveal network usage, latency and bandwidth consumption.
• Provides both real-time and historical perspectives.
• VoIP SIP/RTP correlation and individual VoIP call detail.
• Monitor multiple networks, sub-nets, VLANs and devices.
• Generate and export NetFlow records from raw packet data.
• View network performance over time and perform trend analysis
15
17. Q&A
• Question & Answer
• Download the Case Study here:
http://gurl.im/1ecd2Jw
• To sign up for our newsletter:
http://www.netoptics.com/forms/newsletter-subscription
• Thank you
Net Optics, Inc.
www.netoptics.com
408.737.7777
17
Editor's Notes
Keeping up with constantly increasing market data volume. How will the network monitoring tools, as well as the network access tools handle the increase in data?Accessing the critical, always on network links that need to be monitored while introducing as little latency as possible.The data needs to be shared among multiple groups throughout the organization, but there can be no impact on the actual market data links themselves.Extending the life of network monitoring tools as ports speeds increase.As speeds increase, current network tools will not be able to keep up creating black holes for visibility.
A) Taps on market exchange network links feeding a given monitoring tool.B) Taps on market exchange network links feeding a matrix switch which would then send data to given monitoring applications.C) Director Access Appliances with inline network modules which combines both solutions above.